Microsoft releases emergency patch for Windows 10 flaw
By MYBRANDBOOK
Microsoft has released a Windows patch for a security vulnerability that was prematurely disclosed earlier this week.
Details of the “critical”-rated bug were released on Tuesday as part of the software giant’s typical monthly release of security patches, what it calls Patch Tuesday. The bug exists in the latest version of Windows’ server message block, known as SMB, which lets Windows communicate with devices, like printers and file servers on the network and across the internet.
The security update addresses the vulnerability by correcting how the SMBv3 protocol handles these specially crafted requests.
A successful exploit of the SMB bug could allow an attacker to remotely run malicious code on any vulnerable computer.
Jamie Hankins, Head of Security and Threat Intelligence Research at Kryptos Logic, said some 48,000 internet-connected unpatched servers are vulnerable to exploitation. But the figure is likely to be far greater, as it doesn’t take into account all of the other vulnerable computers connected to those unpatched servers.
News of the bug prompted fears that attackers could launch “wormable” attacks that spread rapidly across networks, like the WannaCry attack in 2017. Now two days later, Microsoft has patches to fix the vulnerability for Windows 10 and Windows Server 2019, versions 1903 and 1909.
It’s not clear exactly what led to the inadvertent disclosure. Researchers at security firm Fortinet and Cisco released blog posts describing the vulnerability, but later removed references to the bug.
The patches are available through the typical update mechanisms, including Windows Update.
Customers who have already installed the updates released on March 10, 2020 for the affected operating systems should install KB4551762 to be protected from this vulnerability," Microsoft said on Thursday.
BHIM to join e-commerce, competing with PhonePe and Google Pay
The government-supported payment software BHIM is getting ready to join t...
The latest version of X helps prevent deepfakes on social medi
To combat deepfakes and shallowfakes, Elon Musk revealed a new update t...
India and Namibia collaborate on a payment system similar to U
Once operational, the platform will enable digital transactions in Namibia,...
Sebi issues show-cause notices to six Adani group firms
Sebi issued show-cause notices to six Adani Group firms, including Adani ...
TAC SECURITY SOLUTIONS
HIMACHAL FUTURISTIC COMMUNICATIONS LTD.
AGGRESSIVE ELECTRONICS MANUFACTURING SERVICES PVT. LTD.
LENOVO GROUP LTD.
Technology Icons Of India 2023: Honorary Prof. N. Balakrishnan
Prof. N. Balakrishnan is an Indian aerospace and computer scientist. H...
Technology Icons Of India 2023: B.V.R. Subrahmanyam
B.V.R. Subrahmanyam belongs to Andhra Pradesh. He is a 1987-batch IAS ...
Technology Icons Of India 2023: Anil Kumar Aggarwal
Anil Agarwal is an Indian billionaire businessman who is the founder a...
DRDO is India's largest and most diverse research organisation
DRDO is the R&D wing of Ministry of Defence, Govt of India, with a vis...
TCIL continues to strengthen India with its technology expertise
TCIL undertakes consultancy & turnkey projects in the field of Telecom...
GeM maintains transparency in online procurement of goods & services
Created in a record time of five months, Government eMarketplace is a ...
TECH DATA, A TD SYNNEX COMPANY
Tech Data Corporation was an American multinational distribution compa...
NETPOLEON SOLUTIONS
Netpoleon Group is a Value-Added Distributor (VAD) of Network Security...
ACCERON INFOSOL PVT. LTD.
It is a leading value added distributor in the IT security space and h...